Shafeeque, On Wed, Aug 7, 2013 at 11:09 AM, Shafeeque O.K [gmail] <[email protected]> wrote: > Hi, > > The following is from my output.txt of a scan against dvwa.Is there any way > I can know what are values tests done against the Parameter 'id'. Basically > I am trying to figure out the SQLi vulnerabilities available in DVWA > application, when the security level is set to 'low'. > > > [Wednesday 07 August 2013 06:45:49 PM IST - debug] sqli plugin is testing: > "http://xxxxxxxxxx/dvwa/vulnerabilities/sqli/ | Method: GET | Parameters: > (id="")"
There is an output plugin that prints all the HTTP traffic to a text file, maybe that's what you're looking for? > Kindly guide. > > -- > Regards, > -S- > > ------------------------------------------------------------------------------ > Get 100% visibility into Java/.NET code with AppDynamics Lite! > It's a free troubleshooting tool designed for production. > Get down to code-level detail for bottlenecks, with <2% overhead. > Download for free and get started troubleshooting in minutes. > http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk > _______________________________________________ > W3af-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/w3af-users > -- Andrés Riancho Project Leader at w3af - http://w3af.org/ Web Application Attack and Audit Framework Twitter: @w3af GPG: 0x93C344F3 ------------------------------------------------------------------------------ Get 100% visibility into Java/.NET code with AppDynamics Lite! It's a free troubleshooting tool designed for production. Get down to code-level detail for bottlenecks, with <2% overhead. Download for free and get started troubleshooting in minutes. http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk _______________________________________________ W3af-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/w3af-users
